bumblebee | f7efeb8a5ab7d4e2674abfcd4e0b61aa10c1ee7b5090fbf816eb847a44e8e20c | Triage

Sharing

General

Target

2016-54-0x00000000020A0000-0x0000000002201000-memory.dmp
Size

1.4MB
Sample

230204-jxxtjach35
MD5

4e00b59873bf8ae0485876e7ddfd61f7
SHA1

36e33acefc52a18b01b4f59e7147651188554c10
SHA256

f7efeb8a5ab7d4e2674abfcd4e0b61aa10c1ee7b5090fbf816eb847a44e8e20c
SHA512

55d5fd1c3688589a1e33f4b16fd2dcec3ad373f9c08087211ecf8774fb092f34a1f9466e67f166811c8be303d5861366cf4060aa2bfff1337741e2a21fac39d1
SSDEEP

24576:ohPwJ9+CadFPRChkPRC8TKeCIHB+p9Zx/IfkZKdYq8I6Z36lyCS:YnPskPRTTKvIh+p9Zx/jYdvbe3sp

Score

10^/10

bumblebee tokdll

Malware Config

Extracted

Family

bumblebee

Botnet

tokdll

C2

195.20.17.233:443

192.111.146.189:443

62.113.238.73:443

rc4.plain

Targets

- Target
  
  2016-54-0x00000000020A0000-0x0000000002201000-memory.dmp
- Size
  
  1.4MB
- MD5
  
  4e00b59873bf8ae0485876e7ddfd61f7
- SHA1
  
  36e33acefc52a18b01b4f59e7147651188554c10
- SHA256
  
  f7efeb8a5ab7d4e2674abfcd4e0b61aa10c1ee7b5090fbf816eb847a44e8e20c
- SHA512
  
  55d5fd1c3688589a1e33f4b16fd2dcec3ad373f9c08087211ecf8774fb092f34a1f9466e67f166811c8be303d5861366cf4060aa2bfff1337741e2a21fac39d1
- SSDEEP
  
  24576:ohPwJ9+CadFPRChkPRC8TKeCIHB+p9Zx/IfkZKdYq8I6Z36lyCS:YnPskPRTTKvIh+p9Zx/jYdvbe3sp
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

tokdllbumblebee

behavioral1

behavioral2